CAS 5.2.1 Ehcache is unable to find the ticket granting ticket

197 views
Skip to first unread message

Maxwell, Gary

unread,
Jan 8, 2018, 6:19:53 PM1/8/18
to cas-...@apereo.org

We are confused on what the CAS 5.2.1 version is doing with Ehcache. We see that the Ticket Granting Ticket is created and written successfully into the Tomcat temp folder. CAS however posts the following error when it tries to receive it for creating the Service Ticket:

 

2018-01-08 15:34:07,147 INFO [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Mon Jan 08 15:34:07 MST 2018|CAS|eyJhbGciOiJIUzUxMiJ9.WlhsS05tRllRV2xQYVVwRlVsVlphVXhEU21oaVIyTnBUMmxLYTJGWVNXbE1RMHBzWW0xTmFVOXBTa0pOVkVrMFVUQktSRXhWYUZSTmFsVXlTVzR3TGk0d1J6QTBVMHAwWlVOR1ZsUlVVVVp6ZVZkWldqQkJMa2hZYlRSbVRFOVRaR2xIU0VGelIxOWtOakZrWmt3M1lrdEJjRWxYYVU5SFRYVm1RbGhYVUZBeFJqWjRkSHBzVFZKVVYwVk1OMVZoYURJeFNucFdjVzFJVWkxV09GY3pNMHB2T1VKRldWRTBTVVpIYUV0MlNHUjBiMHhTVjBrMFUyRkVaVEppY1ZKU2MwRmhjVTh0UkV0cGFYSlRhMUZOVjFOS1FrOW1TRXg0TGxoQlNuTXlkblZGYW5CdGFYWndWRkZFVWtFemNrRT0.ztL4TypoZnjqZCjTc8FMSr9DNhSDM88AHdq9PQb9lSp1HJKy_XzyIMSNG8QgLwCb4dWjVlkVbIqopxdevIofmA

|TICKET_GRANTING_TICKET_CREATED|doe_j|11.4.5.53|11.39.21.27>

 

2018-01-08 15:34:07,173 ERROR [org.apereo.cas.ticket.DefaultTicketCatalog] - <Ticket definition for [eyJhbGciOiJIUzUxMiJ9.WlhsS05tRllRV2xQYVVwRlVsVlphVXhEU21oaVIyTnBUMmxLYTJGWVNXbE1RMHBzWW0xTmFVOXBTa0pOVkVrMFVUQktSRXhWYUZSTmFsVXlTVzR3TGk0d1J6QTBVMHAwWlVOR1ZsUlVVVVp6ZVZkWldqQkJMa2hZYlRSbVRFOVRaR2xIU0VGelIxOWtOakZrWmt3M1lrdEJjRWxYYVU5SFRYVm1RbGhYVUZBeFJqWjRkSHBzVFZKVVYwVk1OMVZoYURJeFNucFdjVzFJVWkxV09GY3pNMHB2T1VKRldWRTBTVVpIYUV0MlNHUjBiMHhTVjBrMFUyRkVaVEppY1ZKU2MwRmhjVTh0UkV0cGFYSlRhMUZOVjFOS1FrOW1TRXg0TGxoQlNuTXlkblZGYW5CdGFYWndWRkZFVWtFemNrRT0.ztL4TypoZnjqZCjTc8FMSr9DNhSDM88AHdq9PQb9lSp1HJKy_XzyIMSNG8QgLwCb4dWjVlkVbIqopxdevIofmA] cannot be found in the ticket catalog which only contains the following ticket types: [[TGT, ST, PT, PGT]]>

 

2018-01-08 15:34:07,173 WARN [org.apereo.cas.ticket.registry.EhCacheTicketRegistry] - <Ticket [eyJhbGciOiJIUzUxMiJ9.WlhsS05tRllRV2xQYVVwRlVsVlphVXhEU21oaVIyTnBUMmxLYTJGWVNXbE1RMHBzWW0xTmFVOXBTa0pOVkVrMFVUQktSRXhWYUZSTmFsVXlTVzR3TGk0d1J6QTBVMHAwWlVOR1ZsUlVVVVp6ZVZkWldqQkJMa2hZYlRSbVRFOVRaR2xIU0VGelIxOWtOakZrWmt3M1lrdEJjRWxYYVU5SFRYVm1RbGhYVUZBeFJqWjRkSHBzVFZKVVYwVk1OMVZoYURJeFNucFdjVzFJVWkxV09GY3pNMHB2T1VKRldWRTBTVVpIYUV0MlNHUjBiMHhTVjBrMFUyRkVaVEppY1ZKU2MwRmhjVTh0UkV0cGFYSlRhMUZOVjFOS1FrOW1TRXg0TGxoQlNuTXlkblZGYW5CdGFYWndWRkZFVWtFemNrRT0.ztL4TypoZnjqZCjTc8FMSr9DNhSDM88AHdq9PQb9lSp1HJKy_XzyIMSNG8QgLwCb4dWjVlkVbIqopxdevIofmA] is not registered in the catalog and is unrecognized>

 

2018-01-08 15:34:07,179 INFO [org.apereo.inspektr.audit.support.Slf4jLoggingAuditTrailManager] - <Mon Jan 08 15:34:07 MST 2018|CAS|eyJhbGciOiJIUzUxMiJ9.WlhsS05tRllRV2xQYVVwRlVsVlphVXhEU21oaVIyTnBUMmxLYTJGWVNXbE1RMHBzWW0xTmFVOXBTa0pOVkVrMFVUQktSRXhWYUZSTmFsVXlTVzR3TGk0d1J6QTBVMHAwWlVOR1ZsUlVVVVp6ZVZkWldqQkJMa2hZYlRSbVRFOVRaR2xIU0VGelIxOWtOakZrWmt3M1lrdEJjRWxYYVU5SFRYVm1RbGhYVUZBeFJqWjRkSHBzVFZKVVYwVk1OMVZoYURJeFNucFdjVzFJVWkxV09GY3pNMHB2T1VKRldWRTBTVVpIYUV0MlNHUjBiMHhTVjBrMFUyRkVaVEppY1ZKU2MwRmhjVTh0UkV0cGFYSlRhMUZOVjFOS1FrOW1TRXg0TGxoQlNuTXlkblZGYW5CdGFYWndWRkZFVWtFemNrRT0.ztL4TypoZnjqZCjTc8FMSr9DNhSDM88AHdq9PQb9lSp1HJKy_XzyIMSNG8QgLwCb4dWjVlkVbIqopxdevIofmA

|TICKET_GRANTING_TICKET_DESTROYED| doe_j|11.4.5.53|11.39.21.27>

 

We specified the following ehcache property:

“cas.ticket.registry.ehcache.cacheName=org.apereo.cas.ticket.TicketCache”

 

It appears CAS  no longer is using the following cacheName property “org.apereo.cas.ticket.TicketCache” to name the temp files  Instead it is creating the following 4 files: proxyGrantingTicketsCache.data, proxyticketsCache.data, serviceTicketsCache.data and TicketGrantingTickesCache.data to save their corresponding tickets.

 

 

Is there something I am missing in order that CAS is able to find the TGT within the temp folder?

 

 

Thanks Gary

 

Christian Axel Schmidt Dick

unread,
Jan 9, 2018, 6:57:10 AM1/9/18
to CAS Community
You should check if the config vars have changed from v5.1, that was driving me crazy last week. Hope it helps!

Maxwell, Gary

unread,
Jan 9, 2018, 6:26:28 PM1/9/18
to cas-...@apereo.org

The reason CAS was not able to find the TGT in the repository is because the cas.ticket.crypto.encryption.key and cas.ticket.crypto.signing.key within cas.properties was configured.  This resulted in the TGT being encrypted and therefore no longer contained the TGT string within the key.

--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/36116215-c0b2-4007-92ed-2aefb84b6a49%40apereo.org.

Reply all
Reply to author
Forward
0 new messages